...
Blue Jeans only supports unencrypted SAML assertions at this time. It also requires that both assertions and responses be signed. For the Shibboleth v3 IdP, a relying party configuration similar to the following should work:
Code Block | ||
---|---|---|
| ||
<bean parent="RelyingPartyByName" c:relyingPartyIds="http://samlsp.bluejeans.com">
<property name="profileConfigurations">
<list>
<bean parent="SAML2.SSO" p:encryptAssertions="false" p:signAssertions="true"/>
</list>
</property>
</bean> |
In the BlueJeans->Admin->Group Settings->Security form, the "Login URL" parameter must be configured to point to an endpoint that supports HTTP-Redirect.
Metadata
SAML 2.0 metadata for the Blue Jeans SP is available at http://bluejeans.com/support/saml-metadata.xml. Blue Jeans is not able to consume metadata today.
...